registry  /  ranuts  /  0.2.0-alpha.1

ranuts@0.2.0-alpha.1

Tree-shakeable TypeScript utility library: DOM/BOM helpers, string/object/number/color utils, debounce/throttle/compose, a 2D rendering engine and a virtual DOM.

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoFilesystemNetwork
Supply chain
HighEntropyStringsMinifiedObfuscatedTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 12 file(s), 1.73 MB of source, external domains: github.com, www.w3.org

Source & flagged code

2 flagged · loading source
dist/umd/node/node.umd.cjsView file
1!function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports,require("node:net"),require("node:http"),require("node:os"),require("node:fs"),require("node:tty"),req...
High
Child Process

Package source references child process execution.

dist/umd/node/node.umd.cjsView on unpkg · L1
dist/src/node/index.jsView file
1import{P as e,S as t,r as n,x as r}from"../../color-CRdlaDqQ.js";import{Socket as o}from"node:net";import s from"node:http";import i from"node:os";import a,{createReadStream as c,c...
High
Command Output Exfiltration

Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.

dist/src/node/index.jsView on unpkg · L1

Findings

2 High2 Medium6 Low
HighChild Processdist/umd/node/node.umd.cjs
HighCommand Output Exfiltrationdist/src/node/index.js
MediumNetwork
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings